gatekeeper
PatchedPolicy & Compliancefrom
mirror.gcr.io/openpolicyagent/gatekeeperPull Reference
ghcr.io/verity-org/openpolicyagent/gatekeeper
docker pull ghcr.io/verity-org/openpolicyagent/gatekeeper
Available Versions
v3.23.0latest1 remaining
v3.22.235 CVEs fixed7 remaining
v3.22.135 CVEs fixed7 remaining
Copa-Patched Image
Patched in-place from the upstream image usingCopa. OS-level vulnerabilities are fixed without rebuilding \u2014 same layers, same behavior, fewer CVEs.
Supply Chain
Full compliance detailsSignedSLSA L3SBOMRekor
Verify this artifact
Cosign signature
cosign verify \ --certificate-identity-regexp "https://github.com/verity-org/verity/.github/workflows/" \ --certificate-oidc-issuer "https://token.actions.githubusercontent.com" \ ghcr.io/verity-org/openpolicyagent/gatekeeper:v3.23.0
Build provenance
gh attestation verify \ oci://ghcr.io/verity-org/openpolicyagent/gatekeeper:v3.23.0 \ --owner verity-org
Vulnerability Scan
Found 1 vulnerability — none have upstream fixes available.
1 UNKNOWN
Awaiting upstream fix
No fix is available yet for these vulnerabilities.
- GO-2026-5932UNKNOWN
- Package
- golang.org/x/crypto
- Installed
- v0.53.0
- Fixed
| ID | Package | Installed | Fixed | Severity |
|---|---|---|---|---|
| GO-2026-5932 | golang.org/x/crypto | v0.53.0 | UNKNOWN |
Source
Copa (in-place patch)
Platforms
linux/amd64, linux/arm64
Registry
ghcr.io/verity-org
Upstream
mirror.gcr.io/openpolicyagent/gatekeeper
Version
v3.23.0